Privacy Policy

Nandanam is a Kerala-focused devotional and almanac service that provides daily Panchangam, Rahu Kaalam, the Malayalam calendar, temple guides, bhajans, ringtones, wallpapers and related spiritual content. The Service is published by Team Nandanam.

We collect only the information needed to operate the Service.

2.1 Information you provide to us

• Account information: when you create an account with email and password, we collect your name, email address and password (stored only as a salted hash, never in plain text). Alternatively, you may sign in with your Google account, in which case Google provides us with your name and email address directly — no password is stored on our side for Google-linked accounts.
• Profile information (optional): profile photo, date of birth, nakshatra, rashi, location and ishta-devata. These are used to personalise spiritual content (for example, your birth-star based daily reading) and are never required to use the Service.
• Kainottam palm images (optional): when you use the Kainottam palm-reading feature, you capture a photo of your palm which is uploaded to our servers, stored in cloud storage (Cloudflare R2), and sent to Google Gemini for analysis. The reading result is stored against your account so you can view it later. Palm images are used solely for this feature, are never shared for advertising, and are deleted when you delete your account.
• User-submitted content: if you submit a temple, photo, caption, or correction, we store that submission alongside your user ID for moderation and attribution.

2.2 Information collected automatically

• Session data: when you sign in, we record a session token, your IP address, and your browser/device user-agent string. Sessions expire after 7 days of inactivity.
• Device storage (App only):the App stores your authentication token in the device’s secure storage (Keychain on iOS, Keystore on Android) and stores non-sensitive preferences (such as language and alarm settings) in the App’s local storage. This data stays on your device.
• Analytics (website only): the website uses Google Analytics 4 and Google Tag Manager to measure aggregate usage (pages viewed, approximate location, device type). The mobile App does not include any third-party analytics SDK.

2.3 Device permissions

• Camera (optional): the App may request camera access solely for the Kainottam feature, which lets you capture a photo of your palm for a reading. The captured image is uploaded to our servers and sent to Google Gemini for analysis (see Section 2.1). You can decline this permission and still use all other features.
• Location (optional): the App may request your approximate location on the temple-discovery screen to suggest nearby temples. Location data is used only in that moment and is never stored or shared.
• Microphone: the App does not request microphone access. The RECORD_AUDIO permission is explicitly blocked at the manifest level.
• The App does not request access to your contacts or photos library.

2.4 Information we do not collect

• We do not collect payment information.
• We do not knowingly collect any personal information from children under 13 (see Section 9).

• To create and manage your account and authenticate you.
• To personalise spiritual content (for example, showing your nakshatra-based reading or ishta-devata related items).
• To deliver core App features such as the Suprabhatham alarm, daily Panchangam, temple guides and bhajans.
• To send local notifications you have scheduled (for example, your morning alarm). The App schedules these notifications on-device; we do not send marketing push notifications and do not store your push token on our servers.
• To moderate user-submitted temple content and prevent abuse.
• To understand aggregate website usage and improve the Service.
• To comply with legal obligations and enforce our terms.

Where the GDPR or UK GDPR applies, we rely on the following legal bases:

• Contract: to provide the account-based features you sign up for.
• Legitimate interests: to keep the Service secure, prevent abuse, and understand aggregate usage.
• Consent: for optional profile fields and for analytics cookies on the website, where required by local law.
• Legal obligation: where we are required to retain or disclose information by law.

We do not sell your personal information. We share it only with the limited categories of recipients below:

• Hosting and infrastructure providers that run our database, file storage (Cloudflare R2 / AWS S3) and servers on our behalf.
• Google Identity Services (Sign in with Google) — both the mobile App and the website support Google Sign-In. When you choose this option, Google sends us your name and email address. We do not receive your Google password or contacts. Google’s use of your data is governed by Google’s Privacy Policy.
• Google Analytics & Google Tag Manager (website only) for aggregate usage measurement.
• Google Gemini API receives your palm image when you use the Kainottam feature. The image is used only to generate your reading and is subject to Google’s Privacy Policy.
• Google Places API is used only to fetch public temple data (address, phone, opening hours, photos, ratings) — no user information is sent to Google Places.
• Law enforcement or regulators when required by valid legal process, or to protect the rights, safety, and property of Nandanam, our users, or others.
• Successor entities in connection with a merger, acquisition, or sale of assets, subject to the same protections set out here.

We retain account information for as long as your account is active. If you delete your account (see Section 8), we delete your profile and associated sessions and submissions within 30 days, except where we are required to retain certain records to comply with legal obligations or resolve disputes. Aggregated, de-identified analytics data may be retained indefinitely.

We protect your information using industry-standard measures: passwords are stored only as salted hashes, API traffic is sent over HTTPS, the App stores authentication tokens in the device’s secure enclave (Keychain / Keystore), and sessions expire automatically. No system is perfectly secure, however, and we cannot guarantee absolute security of information transmitted over the internet.

You have the following rights:

• Access & correction: view and update your profile information at any time inside the App or on the website.
• Account deletion: visit our account deletion page to request deletion of your account and all associated personal data, or email support@nandanam.app from the email address on your account. We will action the request within 30 days.
• Notifications:turn off notifications from the App settings or your device’s system settings at any time.
• Analytics opt-out (website):you can block analytics using browser controls, an ad-blocker, or Google’s opt-out browser add-on.
• Regional rights: users in the EEA, UK, California and other jurisdictions may have additional rights (such as data portability, restriction of processing, or to lodge a complaint with a supervisory authority). Contact us to exercise those rights.

The Service is not directed to children under 13 (or the equivalent minimum age in your jurisdiction). We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us and we will delete it.

Our infrastructure providers may process data in countries other than the one in which you live, including India and the United States. Where required, we put appropriate safeguards in place (such as standard contractual clauses) for those transfers.

The Service may contain links to third-party websites (for example, temple websites or YouTube videos for bhajans). We are not responsible for the privacy practices of those third parties; please review their policies separately.

We may update this Privacy Policy from time to time. The latest version is always available at nandanam.app/privacy. If we make material changes, we will update the “Effective date” above and, where appropriate, notify you in the App.

If you have questions about this Privacy Policy or how we handle your information, please contact us at support@nandanam.app.